S Synecto
Open app
Security

Your reflections, protected.

Privacy isn't a feature we tacked on. It's the foundation of Synecto.

Encryption

All your reflections — text and voice transcripts — are transmitted over TLS and stored encrypted at rest in our database. Only your authenticated session can read your data.

Your data is never used to train AI

Synecto sends conversations to OpenAI for processing, but we explicitly opt out of using your data to improve their models — and we never train any models on your data ourselves. Your reflections are yours.

EU-built, GDPR-compliant

Synecto is built in Ireland by Synect Group. We're an independent company — no investor pressure to monetise your data. We comply with GDPR, including your right to access, export, correct and delete your personal data.

What we collect

The minimum needed to make Synecto work:

  • Your email address (for sign-in and verification)
  • Your reflection transcripts (text and voice)
  • Insights extracted from your reflections (values, beliefs, goals, etc.)
  • App preferences (theme, voice settings, language)

We don't track you across the internet, we don't use third-party analytics on the app, and we don't sell or share your data with anyone.

Email verification

Every 14 days, Synecto asks you to verify your email with a 6-digit code. This makes sure your account stays in your hands and isn't being silently used by someone else.

Biometric app lock

On iOS and Android, you can require Face ID or fingerprint unlock to open Synecto. This means even if someone has your unlocked phone, they can't see your reflections.

Data export and deletion

You can export all your data as JSON anytime from Settings. You can also permanently delete your account and all associated data — sessions, profile insights, habits, everything — with one tap.

Sub-processors

Synecto uses these trusted vendors:

  • Supabase — database and authentication (US East region)
  • OpenAI — AI conversation and insight extraction (zero-retention API mode)
  • Brevo — transactional email delivery (verification codes only)
  • Cloudflare — global CDN and DDoS protection
  • Expo / EAS Hosting — web app hosting

Reporting a security issue

If you find a security vulnerability, please email hello@synecto.io. We'll acknowledge within 72 hours and work with you in good faith to resolve the issue.